Description

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix possible badness in FREE_STATEID When multiple FREE_STATEIDs are sent for the same delegation stateid, it can lead to a possible either use-after-free or counter refcount underflow errors. In nfsd4_free_stateid() under the client lock we find a delegation stateid, however the code drops the lock before calling nfs4_put_stid(), that allows another FREE_STATE to find the stateid again. The first one will proceed to then free the stateid which leads to either use-after-free or decrementing already zeroed counter.

INFO

Published Date :

2024-10-21T19:39:41.758Z

Last Modified :

2025-05-04T09:44:38.551Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2024-50043 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-50043.

URL Resource
https://git.kernel.org/stable/c/7ca9e472ce5c67daa3188a348ece8c02a0765039 cve-icon cve-icon
https://git.kernel.org/stable/c/c88c150a467fcb670a1608e2272beeee3e86df6e cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024102133-CVE-2024-50043-86f8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-50043 cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-50043 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact